Docket No. CISCO-3376 (032590-000143) 

Claims: 

The listing of claims in the application is as follows: 

1 . (Currently amended) A method for on-demand management of Internet Protocol (IP) 
address pools, the method comprising: 

allocating an IP address from a local DP address pool designated for a remote domain if a 
request to connect to said remote domain is received, said local IP address pool 
comprising one or more of at least one subnet obtained from a global IP address pool, 
each of said at least one subnet specifying a contiguous set of one or more IP addresses; 
deallocating an IP address back to said local DP address pool if said IP address is 

relinquished by a remote user; and 
apportioning one or more of said at least one subnet between said global IP address pool and 

said local IP address pool based upon utilization of said local IP address pool by 
requestine one or more subnet from said global IP address pool if utilization of said local IP 
address pool exceeds a first threshold and releasing one or more subnet to said global IP 
address pool if utilization of said local IP address pool falls below a second threshold. 

2. (Original) The method of claim 1, further comprising configuring said local IP address 
pool with a subnet from said at least one subnet. 

3. (Currently amended) The method of claim 1 wherein said apportioning comprises: 

requesting one or more subnet from said global IP address pool includes specifying a remote 

domain ID. a NAS port, and a subnet size if utilization of said local IP addr e ss pool 
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exce e ds a first threshold; and releasing one or more subnet to said global IP address 
pool includes specifying a remote domain ID, a NAS port, a subnet size and a subnet 
address if utilization of said local IP addr e ss pool falls b e low a second threshold. 

4. (Original) The method of claim 3 wherein said apportioning further comprises polling 
said local IP address pool at predetermined intervals to obtain local IP address pool 
utilization information. 

5. (Original) The method of claim 3 wherein 

said requesting further comprises requesting a subnet having first predetermined number of 
IP addresses; and 

said releasing further comprises releasing a subnet having a second predetermined number of 
IP addresses. 

6. (Original) The method of claim 3 wherein 

said requesting further comprises requesting a subnet having a size that is relative to a 

current subnet size; and 
said releasing further comprises releasing a subnet having a size that is relative to said 

current subnet size. 

7. (Original) The method of claim 3 wherein 

said requesting further comprises requesting a subnet having a size that is relative to an 
initial subnet size; and 

Page 3 of 25 



Docket No. CISCO-3376 (032590-000143) 

said releasing further comprises releasing a subnet having a size that is relative to said initial 
subnet size. 

8. (Previously Presented) The method of claim 3 wherein 

said requesting further comprises requesting a subnet having a predetermined size; and 
said releasing further comprises releasing a subnet having said predetermined size. 

9. (Original) The method of claim 3 wherein said releasing further comprises removing the 
summarized route for said one or more subnet from a routing table associated with said local 
IP address pool. 

10. (Original) The method of claim 8 wherein said method further comprises inserting a 
route summary for said requested one or more subnet if said requested one or more subnet is 
received. 

1 1 . (Original) The method of claim 8 wherein said method further comprises: 
inserting a route summary for a received one or more subnet and requesting one or more 

subnet if the size of said received one or more subnet is less than the size of said 

requested one or more subnet; 
inserting a route summary for said received one or more subnet if the size of said received 

one or more subnet equals the size of said requested one or more subnet; 
inserting a route summary for said received one or more subnet if the size of said received 

one or more subnet is greater than the size of said requested one or more subnet and if 

the resulting local IP address pool utilization falls below said second threshold; and 
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rejecting said received one or more subnet and requesting one or more subnet if the size of 
said received one or more subnet is greater than the size of said requested one or more 

subnet and if the resulting local IP address pool utilization does not fall below said 
second threshold. 

12. (Original) The method of claim 1 wherein said remote domain comprises a virtual 
private network (remote domain). 

13. (Currently amended) A program storage device readable by a machine, embodying a 
program of instructions executable by the machine to perform a method for on-demand 
management of Internet Protocol (IP) address pools, the method comprising: 
allocating an IP address from a local IP address pool designated for a remote domain if a 

request to connect to said remote domain is received, said local IP address pool 
comprising one or more of at least one subnet obtained from a global IP address pool, 
each of said at least one subnet specifying a contiguous set of one or more IP addresses; 
deallocating an IP address back to said local IP address pool if said IP address is 

relinquished by a remote user; and 
apportioning one or more of said at least one subnet between said global IP address pool and 

said local IP address pool based upon utilization of said local IP address poolby 
requesting one or more subnet from said global IP address pool if utilization of said local IP 
address pool exceeds a first threshold and releasing one or more subnet to said global IP 
address pool if utilization of said local IP address pool falls below a second threshold. 
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14. (Original) The program storage device of claim 13, said method further comprising 
configuring said local IP address pool with a subnet from said at least one subnet. 

15. (Currently amended) The program storage device of claim 13 wherein said apportioning 
compris e s: 

requesting one or more subnet from said global IP address pool includes specifying a remote 
domain ID. a NAS port, and a subnet size if utilization of said local IP addr e ss pool 
e xc ee ds a first thr e shold; and releasing one or more subnet to said global IP address 
pool includes specifying a remote domain ID, a NAS port, a subnet size and a subnet 
address if utilization of said local IP address pool falls b e low a s e cond thr e shold. 

16. (Original) The program storage device of claim 15 wherein said apportioning further 
comprises polling said local IP address pool at predetermined intervals to obtain local IP 
address pool utilization information. 

17. (Original) The program storage device of claim 15 wherein 

said requesting further comprises requesting a subnet having first predetermined number of 
IP addresses; and 

said releasing further comprises releasing a subnet having a second predetermined number of 
IP addresses. 

18. (Original) The program storage device of claim 15 wherein 

said requesting further comprises requesting a subnet having a size that is relative to a 
current subnet size; and 
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said releasing further comprises releasing a subnet having a size that is relative to said 
current subnet size. 

19. (Original) The program storage device of claim 15 wherein 

said requesting further comprises requesting a subnet having a size that is relative to an 
initial subnet size; and 

said releasing further comprises releasing a subnet having a size that is relative to said initial 
subnet size. 

20. (Previously Presented) The program storage device of claim 15 wherein 

said requesting further comprises requesting a subnet having a predetermined size; and 
said releasing further comprises releasing a subnet having said predetermined size. 

21. (Original) The program storage device of claim 15 wherein said releasing further 
comprises removing the summarized route for said one or more subnet from a routing table 
associated with said local IP address pool. 



22. (Original) The program storage device of claim 20 wherein said method further 

comprises inserting a route summary for said requested one or more subnet if said requested 
one or more subnet is received. 



23. (Original) The program storage device of claim 20 wherein said method further 
comprises: 

inserting a route summary for a received one or more subnet and requesting one or more 
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subnet if the size of said received one or more subnet is less than the size of said 

requested one or more subnet; 
inserting a route summary for said received one or more subnet if the size of said received 

one or more subnet equals the size of said requested one or more subnet; 
inserting a route summary for said received one or more subnet if the size of said received 

one or more subnet is greater than the size of said requested one or more subnet and if 
the resulting local IP address pool utilization falls below said second threshold; and 
rejecting said received one or more subnet and requesting one or more subnet if the size of 

said received one or more subnet is greater than the size of said requested one or more 

subnet and if the resulting local IP address pool utilization does not fall below said 

second threshold. 

24. (Original) The program storage device of claim 13 wherein said remote domain 
comprises a virtual private network (remote domain). 

25. (Currently amended) An apparatus for on-demand management of Internet Protocol (IP) 
address pools, the apparatus comprising: 

means for allocating an IP address from a local IP address pool designated for a remote 
domain if a request to connect to said remote domain is received, said local IP address 
pool comprising one or more of at least one subnet obtained from a global IP address 
pool, each of said at least one subnet specifying a contiguous set of one or more IP 
addresses; 

means for deallocating an IP address back to said local IP address pool if said IP address is 
relinquished by a remote user; and 
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means for apportioning one or more of said at least one subnet between said global IP 
address pool and said local IP address pool based upon utilization of said local IP 
address pool bv requesting one or more subnet from said global IP address pool if 
utilization of said local IP address pool exceeds a first threshold and releasing one or 
more subnet to said global IP address pool if utilization of said local IP address pool 
falls below a second threshold. 

26. (Original) The apparatus of claim 25, further comprising means for configuring said local 
IP address pool with a subnet from said at least one subnet. 

27. (Currently amended) The apparatus of claim 25 wherein said means for apportioning 
compris e s: 

moans for r equesting one or more subnet from said global IP address pool includes 

specifying a remote domain ID, a NAS port, and a subnet size if utilization of said local 
IP addr e ss pool e xc e eds a first threshold; and releasing one or more subnet to said 
global IP address pool includes specifying a remote domain DP, a NAS port, a subnet 
size and a subnet address if utilization of said local IP addr e ss pool falls b e low a second 
thr e shold. 

28. (Original) The apparatus of claim 27 wherein said means for apportioning further 
comprises means for polling said local IP address pool at predetermined intervals to obtain 
local IP address pool utilization information. 
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29. (Original) The apparatus of claim 27 wherein 

said means for requesting further comprises means for requesting a subnet having first 

predetermined number of IP addresses; and 
said means for releasing further comprises means for releasing a subnet having a second 

predetermined number of IP addresses. 

30. (Original) The apparatus of claim 27 wherein 

said means for requesting further comprises means for requesting a subnet having a size that 

is relative to a current subnet size; and 
said means for releasing further comprises means for releasing a subnet having a size that is 

relative to said current subnet size. 

3 1 . (Original) The apparatus of claim 27 wherein 

said means for requesting further comprises means for requesting a subnet having a size that 

is relative to an initial subnet size; and 
said means for releasing further comprises means for releasing a subnet having a size that is 

relative to said initial subnet size. 

32. (Previously Presented) The apparatus of claim 27 wherein 

said means for requesting further comprises means for requesting a subnet having a 

predetermined size; and 
said means for releasing further comprises means for releasing a subnet having said 

predetermined size. 
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33. (Original) The apparatus of claim 27 wherein said means for releasing further comprises 
means for removing the summarized route for said one or more subnet from a routing table 
associated with said local IP address pool. 

34. (Original) The apparatus of claim 32 wherein said apparatus further comprises means for 
inserting a route summary for said requested one or more subnet if said requested one or 
more subnet is received. 



35. (Original) The apparatus of claim 32 wherein said apparatus further comprises: 
means for inserting a route summary for a received one or more subnet and means for 

requesting one or more subnet if the size of said received one or more subnet is less than 

the size of said requested one or more subnet; 
means for inserting a route summary for said received one or more subnet if the size of said 

received one or more subnet equals the size of said requested one or more subnet; 
means for inserting a route summary for said received one or more subnet if the size of said 

received one or more subnet is greater than the size of said requested one or more 

subnet and if the resulting local IP address pool utilization falls below said second 

threshold; and 

means for rejecting said received one or more subnet and means for requesting one or more 
subnet if the size of said received one or more subnet is greater than the size of said 
requested one or more subnet and if the resulting local EP address pool utilization does 
not fall below said second threshold. 
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36. (Original) The apparatus of claim 25 wherein said remote domain comprises a virtual 
private network (remote domain). 



37. (Currently amended) An apparatus for on-demand management of Internet Protocol (IP) 
address pools, the apparatus comprising: 

an allocator to allocate an IP address from a local IP address pool designated for a 

remote domain if a request to connect to said remote domain is received, said local IP 
address pool comprising one or more of at least one subnet obtained from a global IP 
address pool, each of said at least one subnet specifying a contiguous set of one or more 
IP addresses, said allocator coupled to said local IP address pool; 

a deallocator to deallocate an IP address back to said local IP address pool if said IP address 
is relinquished by a remote user, said deallocator coupled to said local IP address pool; 
and 

a monitor to apportion one or more of said at least one subnet between said global IP address 
pool and said local IP address pool based upon utilization of said local IP address pool, 
bv requesting one or more subnet from said global IP address pool if utilization of said 
local IP address pool exceeds a first threshold and releasing one or more subnet to said 
global IP address pool if utilization of said local IP address pool falls below a second 
threshold, said monitor coupled to said local IP address pool and a global IP address 
pool interface. 



38. (Original) The apparatus of claim 37, further comprising an IP address configurer to 
configure said local IP address pool with a subnet from said at least one subnet. 
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39. (Currently amended) The apparatus of claim 37 wherein said monitor comprises: 
a utilization assessor to assess utilization of said local IP address pool, said utilization 

assessor coupled to said local IP address pool; 
a subnet requestor to issue a subnet request specifying a remote domain ID, a NAS port, and 

a subnet size r e qu e st a subn e t from said global IP addr e ss pool if utilization of said local 

IP addr e ss pool e xceeds a first threshold; - 
a subnet receiver to receive said r e quest e d subnet request and to forward said requ e st e d 

subnet request to said local IP address pool, said subnet receiver coupled to said local IP 

address pool and said global IP address pool interface; and 
a subnet returner to return a subnet to said local IP address pool if said utilization ass e ssor 

indicat e s utilization of said local IP addr e ss pool is below a s e cond thr e shold, said 

subnet returner coupled to said local IP address pool and said global IP address pool 

interface. 

40. (Original) The apparatus of claim 39 wherein said utilization assessor is further 
configured to poll said local IP address pool at predetermined intervals to obtain local IP 
address pool utilization information. 

41 . (Original) The apparatus of claim 39 wherein 

said subnet requestor is further configured to request a subnet having first predetermined 

number of IP addresses; and 
said subnet returner is further configured to release a subnet having a second predetermined 

number of IP addresses. 
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42. (Original) The apparatus of claim 39 wherein 

said subnet requestor is further configured to request a subnet having a size that is relative to 

a current subnet size; and 
said subnet returner is further configured to release a subnet having a size that is relative to 

said current subnet size. 

43. (Original) The apparatus of claim 39 wherein 

said subnet requestor is further configured to request a subnet having a size that is relative to 

an initial subnet size; and 
said subnet returner is further configured to release a subnet having a size that is relative to 

said initial subnet size. 

44. (Previously Presented) The apparatus of claim 39 wherein 

said subnet requestor is further configured to request a subnet having a predetermined size; 
and 

said subnet returner is further configured to release a subnet having said predetermined size. 

45. (Original) The apparatus of claim 39 wherein said subnet returner is further configured to 
remove the summarized route for said one or more subnet from a routing table associated 
with said local IP address pool. 

46. (Original) The apparatus of claim 44 wherein said subnet receiver is further configured to 
insert a route summary for said requested one or more subnet if said requested one or more 
subnet is received. 
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47. (Original) The apparatus of claim 44 wherein said subnet receiver is further configured 
to: 

insert a route summary for a received one or more subnet and requesting one or more subnet 
if the size of said received one or more subnet is less than the size of said requested one 
or more subnet; 

insert a route summary for said received one or more subnet if the size of said received one 
or more subnet equals the size of said requested one or more subnet; 

insert a route summary for said received one or more subnet if the size of said received one 
or more subnet is greater than the size of said requested one or more subnet and if the 
resulting local IP address pool utilization falls below said second threshold; and 

reject said received one or more subnet and requesting one or more subnet if the size of said 
received one or more subnet is greater than the size of said requested one or more 
subnet and if the resulting local IP address pool utilization does not fall below said 
second threshold. 

48. (Original) The apparatus of claim 37 wherein said remote domain comprises a virtual 
private network (remote domain). 

49. (Original) The apparatus of claim 37 wherein 

said global IP address pool comprises an Authentication, Authorization and Accounting 
(AAA) server; and 

said global IP address interface comprises an AAA proxy configured to communicate with 
said AAA server using the RADIUS protocol. 
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50. (Original) The apparatus of claim 37 wherein 

said global IP address pool comprises a Dynamic Host Configuration Protocol (DHCP) 
server; and 

said global IP address interface comprises a Ring Access Controller (RAC) client configured 
to communicate with said DHCP server using the DHCP protocol. 

51. (Previously Presented) A method for on-demand management of Internet Protocol (IP) 
address pools, the method comprising: 

allocating an IP address from a local IP address pool designated for a remote domain if a 
request to connect to said remote domain is received, said local IP address pool 
comprising one or more of at least one subnet obtained from a global IP address pool, 
each of said at least one subnet specifying a contiguous set of one or more IP addresses; 

deallocating an IP address back to said local IP address pool if said IP address is 
relinquished by a remote user; 

apportioning one or more of said at least one subnet between said global IP address pool and 
said local IP address pool based upon utilization of said local IP address pool, said 
apportioning further comprising: 

requesting one or more subnet from said global IP address pool if utilization of said 

local IP address pool exceeds a first threshold, said one or more subnet having a 

size that is relative to a current subnet size; and 
releasing one or more subnet to said global IP address pool if utilization of said local IP 

address pool falls below a second threshold, said one or more subnet having a size 

that is relative to said current subnet size; 

inserting a route summary for a received one or more subnet and requesting one or more 
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subnet if the size of said received one or more subnet is less than the size of said 

requested one or more subnet; 
inserting a route summary for said received one or more subnet if the size of said received 

one or more subnet equals the size of said requested one or more subnet; 
inserting a route summary for said received one or more subnet if the size of said received 

one or more subnet is greater than the size of said requested one or more subnet and if 
the resulting local IP address pool utilization falls below said second threshold; and 
rejecting said received one or more subnet and requesting one or more subnet if the size of 
said received one or more subnet is greater than the size of said requested one or more 
subnet and if the resulting local TP address pool utilization does not fall below said 
second threshold. 

52. (Previously Presented) A program storage device readable by a machine, embodying a 

program of instructions executable by the machine to perform a method for on-demand 

management of Internet Protocol (IP) address pools, the method comprising: 

allocating an IP address from a local IP address pool designated for a remote domain if a 

request to connect to said remote domain is received, said local IP address pool 

comprising one or more of at least one subnet obtained from a global IP address pool, 

each of said at least one subnet specifying a contiguous set of one or more IP addresses; 

deallocating an IP address back to said local IP address pool if said IP address is 

relinquished by a remote user; 

apportioning one or more of said at least one subnet between said global IP address pool and 

said local IP address pool based upon utilization of said local IP address pool, said 
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apportioning further comprising: 

requesting one or more subnet from said global IP address pool if utilization of said 
local IP address pool exceeds a first threshold, said one or more subnet having a 
size that is relative to a current subnet size; and 
releasing one or more subnet to said global IP address pool if utilization of said local IP 
address pool falls below a second threshold, said one or more subnet having a size 
that is relative to said current subnet size; 
inserting a route summary for a received one or more subnet and requesting one or more 
subnet if the size of said received one or more subnet is less than the size of said 
requested one or more subnet; 
inserting a route summary for said received one or more subnet if the size of said received 

one or more subnet equals the size of said requested one or more subnet; 
inserting a route summary for said received one or more subnet if the size of said received 
one or more subnet is greater than the size of said requested one or more subnet and if 
the resulting local IP address pool utilization falls below said second threshold; and 
rejecting said received one or more subnet and requesting one or more subnet if the size of 
said received one or more subnet is greater than the size of said requested one or more 
subnet and if the resulting local IP address pool utilization does not fall below said 
second threshold. 



53. (Previously Presented) An apparatus for on-demand management of Internet Protocol 
(IP) address pools, the apparatus comprising: 

means for allocating an IP address from a local IP address pool designated for a remote 

domain if a request to connect to said remote domain is received, said local IP address 
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pool comprising one or more of at least one subnet obtained from a global IP address 
pool, each of said at least one subnet specifying a contiguous set of one or more IP 
addresses; 

means for deallocating an IP address back to said local IP address pool if said IP address is 

relinquished by a remote user; 
means for apportioning one or more of said at least one subnet between said global IP 

address pool and said local IP address pool based upon utilization of said local IP 

address pool, said means for apportioning further comprising: 

means for requesting one or more subnet from said global IP address pool if utilization 

of said local IP address pool exceeds a first threshold, said one or more subnet 

having a size that is relative to a current subnet size; and 
means for releasing one or more subnet to said global IP address pool if utilization of 

said local IP address pool falls below a second threshold, said one or more subnet 

having a size that is relative to said current subnet size; 
means for inserting a route summary for a received one or more subnet and requesting one or 
more subnet if the size of said received one or more subnet is less than the size of said 
requested one or more subnet; 
means for inserting a route summary for said received one or more subnet if the size of said 

received one or more subnet equals the size of said requested one or more subnet; 
means for inserting a route summary for said received one or more subnet if the size of said 
received one or more subnet is greater than the size of said requested one or more 
subnet and if the resulting local IP address pool utilization falls below said second 
threshold; and 

means for rejecting said received one or more subnet and requesting one or more subnet if 
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the size of said received one or more subnet is greater than the size of said requested one 
or more subnet and if the resulting local IP address pool utilization does not fall below 
said second threshold. 

(Previously Presented) An apparatus for on-demand management of Internet Protocol 
(IP) address pools, the apparatus comprising: 

an allocator to allocate an IP address from a local IP address pool designated for a remote 
domain if a request to connect to said remote domain is received, said local IP address 
pool comprising one or more of at least one subnet obtained from a global IP address 
pool, each of said at least one subnet specifying a contiguous set of one or more IP 
addresses, said allocator coupled to said local IP address pool; 

a deallocator to deallocate an IP address back to said local IP address pool if said IP address 
is relinquished by a remote user, said deallocator coupled to said local IP address pool; 

a monitor to apportion one or more of said at least one subnet between said global IP address 
pool and said local IP address pool based upon utilization of said local IP address pool, 
said monitor coupled to said local IP address pool and a global IP address pool interface, 
said monitor comprising: 

a utilization assessor to assess utilization of said local IP address pool, said utilization 

assessor coupled to said local IP address pool; 
a subnet requestor to request a subnet from said global IP address pool if utilization of 

said local IP address pool exceeds a first threshold, said subnet having a size that is 

relative to a current subnet size; 

a subnet receiver to receive said requested subnet and to forward said requested subnet 

to said local IP address pool, said subnet receiver coupled to said local IP address 

Page 20 of 25 



Docket No. CISCO-3376 (032590-000143) 

pool and said global IP address pool interface, said subnet having a size that is 

relative to said current subnet size, said subnet receiver configured to: 

insert a route summary for a received one or more subnet and requesting one or 

more subnet if the size of said received one or more subnet is less than the size 

of said requested one or more subnet; 
insert a route summary for said received one or more subnet if the size of said 

received one or more subnet equals the size of said requested one or more 

subnet; 

insert a route summary for said received one or more subnet if the size of said 
received one or more subnet is greater than the size of said requested one or 
more subnet and if the resulting local IP address pool utilization falls below 
said second threshold; and 

reject said received one or more subnet and requesting one or more subnet if the 
size of said received one or more subnet is greater than the size of said 
requested one or more subnet and if the resulting local IP address pool 
utilization does not fall below said second threshold; and 
a subnet returner to return a subnet to said local IP address pool if said utilization 

assessor indicates utilization of said local IP address pool is below a second 

threshold, said subnet returner coupled to said local IP address pool and said global 

IP address pool interface. 
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